This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json) Hash identifier: rtubFHHfKi3kL4l/YC1/tZdXzkAl0owFIlFGP8RQ6NE= Subject key identifier: 2B:90:A9:C9:62:75:02:2E:CB:EB:3D:BB:77:CD:04:B4:42:EC:B7:C5 Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece Certificate serial: 019AF3892DB046BED28F78D2EEA56FA134BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 12:00:44 +0000 Manifest this update: Sat 06 Dec 2025 12:00:44 +0000 Manifest next update: Sun 07 Dec 2025 12:00:44 +0000 Files and hashes: 1: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: eYYFQVXSL2YYisVv/tATlSkHLrI/5H7MWII3rotVOPo=) 2: srWs4lSgEcXww8bmZ8Qduqdxgdw.roa (hash: Fa3vdYsDt8LbAe4PXMPi2JDBOubqWHhdVQas9y66mmI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:2d:b0:46:be:d2:8f:78:d2:ee:a5:6f:a1:34:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece Validity Not Before: Dec 6 12:00:44 2025 GMT Not After : Dec 7 12:00:44 2025 GMT Subject: CN=2b90a9c96275022ecbeb3dbb77cd04b442ecb7c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e0:ca:ba:1f:12:ee:db:67:22:eb:86:37:4d: b4:60:be:7c:00:56:d2:37:e7:72:5e:b7:ac:b2:01: 3b:3c:f9:7c:17:f2:f2:ea:2d:f5:1b:bc:7f:50:f7: 05:8b:fe:99:fd:62:f2:97:61:6f:a9:57:f1:54:0e: 60:9a:d6:9a:32:a6:37:67:c2:9d:7b:15:ad:c0:22: 59:51:cc:1d:f6:3a:4d:66:d5:25:3d:b3:a1:09:4b: 1e:f3:69:77:65:61:af:03:49:6c:78:c3:4f:b6:94: 0a:45:6b:41:43:8f:bd:6c:c7:dd:db:da:b9:8c:32: 37:ea:af:85:ed:2b:73:ed:e1:a3:e3:a1:64:ad:88: 51:cd:58:bb:a1:60:df:cc:33:66:54:60:62:bd:4b: f2:d9:7b:8e:e0:6a:cb:d8:87:07:e4:06:61:5d:85: 3e:59:55:e0:60:fe:30:20:b5:e3:2f:0d:c6:02:5a: 4f:e3:30:f6:bc:fc:9f:60:bf:9f:a4:03:7e:ca:4d: 26:53:25:15:ae:59:61:c2:d2:25:a7:48:61:f8:f8: 26:46:fd:b6:8e:a2:cb:f4:8f:d1:5b:d1:0a:cd:2a: ff:53:4d:37:24:86:42:15:be:f2:c7:17:64:2d:a9: 4f:55:14:6e:23:73:3d:19:b1:e7:c7:6e:c2:5e:bd: 12:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:90:A9:C9:62:75:02:2E:CB:EB:3D:BB:77:CD:04:B4:42:EC:B7:C5 X509v3 Authority Key Identifier: keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:6c:d0:02:18:d0:00:a6:08:cf:a0:e7:93:34:f1:99:aa:d7: bb:26:5e:d5:70:be:2b:12:7c:83:21:70:2f:ae:cd:7c:9c:bb: c1:af:eb:59:f0:ea:60:a4:94:f5:48:cf:53:6b:5e:66:c4:9a: 93:19:ec:23:fd:d6:e3:f4:5e:a0:08:23:49:a1:bb:95:b0:e0: 9c:13:a4:0c:4e:4b:e4:83:50:82:32:a6:2d:db:d9:c8:af:ce: 0c:60:c2:22:3a:6e:a9:e4:46:9c:73:3c:3c:54:f0:1e:c1:67: ba:af:a1:e4:ff:71:31:ea:c7:fa:c6:d9:9d:97:6a:56:14:dd: 79:eb:b2:64:94:20:ab:28:03:90:b6:37:46:0c:dd:e8:a2:e9: b1:1f:41:aa:ee:62:6c:23:89:05:31:c9:75:ec:df:d8:15:a3: b0:31:71:55:95:db:b1:bf:da:a7:02:87:f8:34:a5:d8:6d:52: f6:34:fb:25:8d:2c:d7:8e:6f:4b:20:bc:12:2b:25:86:a8:04: 97:01:2b:74:d7:3c:1e:6f:b8:13:27:2c:31:75:e0:c4:b5:c2: 76:00:27:64:6d:98:b4:b2:41:16:44:9b:25:4b:74:b9:c8:d8: 9b:c2:6c:86:d7:de:77:e7:8c:be:d9:33:32:06:22:e1:14:19: 79:4c:ae:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziS2wRr7Sj3jS7qVvoTS9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlOTgxNGQ0MzE1ZDMwYWRiYzhkZTMwNjAwNTU2YWU5YzNj ZjllY2UwHhcNMjUxMjA2MTIwMDQ0WhcNMjUxMjA3MTIwMDQ0WjAzMTEwLwYDVQQD EygyYjkwYTljOTYyNzUwMjJlY2JlYjNkYmI3N2NkMDRiNDQyZWNiN2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArODKuh8S7ttnIuuGN020YL58AFbS N+dyXressgE7PPl8F/Ly6i31G7x/UPcFi/6Z/WLyl2FvqVfxVA5gmtaaMqY3Z8Kd exWtwCJZUcwd9jpNZtUlPbOhCUse82l3ZWGvA0lseMNPtpQKRWtBQ4+9bMfd29q5 jDI36q+F7Stz7eGj46FkrYhRzVi7oWDfzDNmVGBivUvy2XuO4GrL2IcH5AZhXYU+ WVXgYP4wILXjLw3GAlpP4zD2vPyfYL+fpAN+yk0mUyUVrllhwtIlp0hh+PgmRv22 jqLL9I/RW9EKzSr/U003JIZCFb7yxxdkLalPVRRuI3M9GbHnx27CXr0SAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCuQqclidQIuy+s9u3fNBLRC7LfFMB8GA1UdIwQY MBaAFF6YFNQxXTCtvI3jBgBVaunDz57OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS83YTc4ZDQtMDM0MC00MjI3LWIxNDct MzViNTNkMjM3NmQyLzEvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS83YTc4ZDQtMDM0MC00MjI3LWIxNDctMzViNTNkMjM3NmQy LzEvWHBnVTFERmRNSzI4amVNR0FGVnE2Y1BQbnM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKmzQAhjQ AKYIz6DnkzTxmarXuyZe1XC+KxJ8gyFwL67NfJy7wa/rWfDqYKSU9UjPU2teZsSa kxnsI/3W4/ReoAgjSaG7lbDgnBOkDE5L5INQgjKmLdvZyK/ODGDCIjpuqeRGnHM8 PFTwHsFnuq+h5P9xMerH+sbZnZdqVhTdeeuyZJQgqygDkLY3Rgzd6KLpsR9Bqu5i bCOJBTHJdezf2BWjsDFxVZXbsb/apwKH+DSl2G1S9jT7JY0s145vSyC8EislhqgE lwErdNc8Hm+4EycsMXXgxLXCdgAnZG2YtLJBFkSbJUt0ucjYm8Jshtfed+eMvtkz MgYi4RQZeUyuUA== -----END CERTIFICATE-----Generated at Sat Dec 6 21:43:18 2025 by rpki-client